svn rev #23695: trunk/src/lib/gssapi/krb5/
tlyu@MIT.EDU
tlyu at MIT.EDU
Thu Feb 4 22:05:42 EST 2010
http://src.mit.edu/fisheye/changelog/krb5/?cs=23695
Commit By: tlyu
Log Message:
ticket: 6598
tags: pullup
target_version: 1.8
Apply patch from Arlene Berry to return a comparable static OID object
instead of the application-passed (probably dynamically allocated)
OID, to avoid use-after-free problems.
Changed Files:
U trunk/src/lib/gssapi/krb5/init_sec_context.c
Modified: trunk/src/lib/gssapi/krb5/init_sec_context.c
===================================================================
--- trunk/src/lib/gssapi/krb5/init_sec_context.c 2010-02-03 19:55:05 UTC (rev 23694)
+++ trunk/src/lib/gssapi/krb5/init_sec_context.c 2010-02-05 03:05:42 UTC (rev 23695)
@@ -979,12 +979,15 @@
err = 1;
}
} else if (g_OID_equal(mech_type, gss_mech_krb5)) {
+ mech_type = (gss_OID) gss_mech_krb5;
if (!cred->rfc_mech)
err = 1;
} else if (g_OID_equal(mech_type, gss_mech_krb5_old)) {
+ mech_type = (gss_OID) gss_mech_krb5_old;
if (!cred->prerfc_mech)
err = 1;
} else if (g_OID_equal(mech_type, gss_mech_krb5_wrong)) {
+ mech_type = (gss_OID) gss_mech_krb5_wrong;
if (!cred->rfc_mech)
err = 1;
} else {
More information about the cvs-krb5
mailing list